Storing beancont files on github/bitbucket
323 views
Skip to first unread message
mpl...@gmail.com
Apr 24, 2018, 9:13:54 AM4/24/18
to Beancount
Guys hi,
As many of you i use git to track changes of main beancount file, importers, etc.
For now i was using git locally, but today created private repo on bitbucket and pushed all the files.
Do you also keep your files on github/bitbucket? Or it's bad idea? It's relatively sensitive information - there is no passwords, full account #s or anything, but still my financial data is there.
As many of you i use git to track changes of main beancount file, importers, etc.
For now i was using git locally, but today created private repo on bitbucket and pushed all the files.
Do you also keep your files on github/bitbucket? Or it's bad idea? It's relatively sensitive information - there is no passwords, full account #s or anything, but still my financial data is there.
Metin Akat
Apr 24, 2018, 10:36:00 AM4/24/18
to bean...@googlegroups.com
I wouldn't hold anything in a private github repo. If it's private enough to not be public, then it's private enough to not trust github (the company) with this information. And I mean that for code too. I have my own private server on a VPS host which is encrypted and I'm reasonably sure that the hosting company can't read it.
--
You received this message because you are subscribed to the Google Groups "Beancount" group.
To unsubscribe from this group and stop receiving emails from it, send an email to beancount+unsubscribe@googlegroups.com.
To post to this group, send email to bean...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/beancount/e8e8aac1-1756-4cfd-8b37-d2bdf7dc2dee%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
wjw...@gmail.com
Apr 24, 2018, 7:40:41 PM4/24/18
to Beancount
Check out Keybase - they launched an encrypted git last year.
There's also an encrypted file system and a team feature that'd let you set up a team with your accountant.
Martin Blais
Apr 24, 2018, 10:31:06 PM4/24/18
to Beancount
Personally I wouldn't do it. It's all living in encrypted & buried hidden places even on my home computer, in case it gets robbed. Even my backup drives are encrypted. I think the answer depends on how secure you feel about your data in other people's hands, and what you think they might be able to do with it. That's an individual choice, I don't think there's a right answer.
For instance, do you think anything could be done with a list of all your accounts? (What type of security questions does your bank ask you to authenticate you? Have you ever been asked "What accounts do you have with us?" or "How much is the balance of this account?") And do you happen to your similar password schemes across different accounts? If I can crack one of your passwords, does that give me hints on cracking the ones from the rest of the list? Maybe it's a little paranoid, but why take the chance?
mpl...@gmail.com
Apr 25, 2018, 5:35:57 PM4/25/18
to Beancount
Thank you for all your replies guys, makes perfect sense. I will encrypt the data and will use dropbox & back up drives for back ups instead of private repo.
Reply all
Reply to author
Forward
0 new messages